f396ff8587a6c659fe1f8975f19ebe03d739bf93d1f2acd5d367f29348778d19

General

Target

f396ff8587a6c659fe1f8975f19ebe03d739bf93d1f2acd5d367f29348778d19
Size

77KB
MD5

3fe2e70735db55e69d5c78041cd16f0e
SHA1

77b826029a35ff72fc9101b90d411af972b1f480
SHA256

f396ff8587a6c659fe1f8975f19ebe03d739bf93d1f2acd5d367f29348778d19
SHA512

811f8fab14b8d004c834fa58706e90418391b0f4b4dedb87ddd81baf477db7c4e86ac0f03e24f06c633acee4776dd1fcd0f57fff39495a22ce0d6cd6565fac26
SSDEEP

1536:EKnQq2DOCdRwp/A1/DexV44MoJiqOvapq2Nd:tQQO1rexV44MokqOvIqUd

Score

N/A

Malware Config

Signatures

Files

f396ff8587a6c659fe1f8975f19ebe03d739bf93d1f2acd5d367f29348778d19
.dll windows x86

d27b493d02cc4fe657b443656cebc477

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleW
GetPrivateProfileSectionA
SetErrorMode
UnmapViewOfFile
WriteFile
HeapAlloc
GetFileSize
GetTickCount
GetTempPathA
SetUnhandledExceptionFilter
FindFirstFileA
FindFirstFileExA
ReadFile
SetFilePointer
GetFileAttributesA
GetCurrentProcess
LocalAlloc
GetProcessHeap
GetCurrentThreadId
GetCurrentProcessId
FindClose
CreateFileMappingA
GetModuleHandleA
SetLastError
GetPrivateProfileStringA
GetCurrentDirectoryA
CreateFileA
GetLastError
OpenProcess
GetFileInformationByHandle
RemoveDirectoryA
FindNextFileA
GetSystemTimeAsFileTime
UnhandledExceptionFilter
MapViewOfFile
CopyFileA
GetFullPathNameA
QueryPerformanceCounter
GetFileAttributesExA
DeleteFileA
FlushViewOfFile
SetEndOfFile
SetCurrentDirectoryA
ExpandEnvironmentStringsA
FreeLibrary
HeapFree
CloseHandle
LocalFree
SetFileAttributesA
GetTempFileNameA
TerminateProcess

user32

LoadIconA
GetSystemMetrics
LoadImageA
RegisterClassExA
FindWindowExA
GetClassLongA
UnregisterClassA
LoadCursorA

advapi32

AdjustTokenPrivileges
LookupPrivilegeValueA
ConvertStringSidToSidA
OpenProcessToken

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

gdi32

GetStockObject

Exports

Exports

MyAdjuusttToken
MyChhanngeDeskttop
MyEndProcPositioonn
MyGetttHandlee
MySetWiinndowPos

Sections

.text
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d27b493d02cc4fe657b443656cebc477

Headers

File Characteristics

Imports

kernel32

user32

advapi32

version

gdi32

Exports

Exports

Sections

.text Size: 40KB - Virtual size: 40KB

.data Size: 35KB - Virtual size: 35KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 40KB - Virtual size: 40KB

.data
Size: 35KB - Virtual size: 35KB

.reloc
Size: 2KB - Virtual size: 1KB